← back
CVE-2016-3088

CVE-2016-3088

CVSS 9.8 CRITICALEPSS 98.5%● KEVCWE-434
In short

Apache ActiveMQ's file server allows attackers to upload harmful files to the server through HTTP requests and then execute them, potentially taking complete control of the system.

Technical detail

The vulnerability exists in ActiveMQ 5.x versions before 5.14.0 where the Fileserver web application fails to properly validate file uploads. An attacker can upload arbitrary files via HTTP PUT requests and subsequently move them to executable locations using HTTP MOVE requests, achieving remote code execution without authentication.

Summary generated and translated by AI from the official description.
The Fileserver web application in Apache ActiveMQ 5.x before 5.14.0 allows remote attackers to upload and execute arbitrary files via an HTTP PUT followed by an HTTP MOVE request.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found11
githubgithub.com/Catherines77/ActiveMQ-EXPtools77githubgithub.com/YutuSec/ActiveMQ_Crack18githubgithub.com/Ma1Dong/ActiveMQ_putshell-CVE-2016-308815githubgithub.com/cyberaguiar/CVE-2016-30885githubgithub.com/cl4ym0re/CVE-2016-30884githubgithub.com/HeArtE4t3r/CVE-2016-30880githubgithub.com/wood03mm/CVE-2016-30880githubgithub.com/vonderchild/CVE-2016-30880exploitdbwww.exploit-db.com/exploits/40857unverifiedexploitdbwww.exploit-db.com/exploits/42283unverifiedcve_referencewww.exploit-db.com/exploits/42283/unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://activemq.apache.org/security-advisories.data/CVE-2016-3088-announcement.txthttp://rhn.redhat.com/errata/RHSA-2016-2036.htmlhttps://lists.apache.org/thread.html/a859563f05fbe7c31916b3178c2697165bd9bbf5a65d1cf62aef27d2%40%3Ccommits.activemq.apache.org%3Ehttps://lists.apache.org/thread.html/f956ea38e4da2e2c1e7131e6f91e41754852f5a4861d1a14ca5ca78a%40%3Cusers.activemq.apache.org%3Ehttps://lists.apache.org/thread.html/r6d03e45b81eab03580cf7f8bb51cb3e9a1b10a2cc0c6a2d3cc92ed0c%40%3Cannounce.apache.org%3Ehttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-3088https://www.exploit-db.com/exploits/42283/http://www.securitytracker.com/id/1035951http://www.zerodayinitiative.com/advisories/ZDI-16-356http://www.zerodayinitiative.com/advisories/ZDI-16-357